PKI Governance and Configuration Manager

About The Position

Requirements

• Meticulous: You have an eye for detail, ensuring that a single misconfigured control doesn't compromise an entire assessment.
• Strategist: You can translate complex federal mandates into actionable technical requirements for engineering teams.
• Communicator: You are comfortable briefing Authorizing Officials (AOs) and stakeholders on risk posture and compliance gaps.

Responsibilities

• Direct the governance lifecycle for multiple PKI systems and Credential Hosting environments.
• Enforce adherence to Certificate Policy (CP) and Certification Practice Statements (CPS).
• Lead the development and implementation of PKI-related policies across diverse network fabrics.
• Serve as the Lead for all NIST SP 800-53 security compliance assessments.
• Author, review, and maintain a comprehensive library of security artifacts (SSP, SAR, POA&M, etc.).
• Manage the end-to-end FedRAMP certification process for SaaS offerings.
• Ensure continuous monitoring and timely remediation to maintain ATO status for all systems.
• Establish and manage strict Configuration Management (CM) baselines for PKI hardware and software.
• Lead the Change Advisory Board (CAB) for identity services, evaluating the security impact of all system modifications.
• Maintain rigorous documentation of system architectures and configuration settings.
• Synchronize security postures across Unclassified (NIPR), Classified (SIPR), and Cloud/SaaS environments.
• Coordinate with cross-functional teams to ensure seamless identity management and credential interoperability.